CVE-2024-9474 | Palo Alto Networks Cloud NGFW/PAN-OS/Prisma Access Management Web Interface os command injection

Inserito da Angelo Barbosa | Nov 18, 2024 | CVE

A vulnerability was found in Palo Alto Networks Cloud NGFW, PAN-OS and Prisma Access. It has been classified as critical. Affected is an unknown function of the component Management Web Interface. The manipulation leads to os command injection.

This vulnerability is traded as CVE-2024-9474. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-9474 | Palo Alto Networks Cloud NGFW/PAN-OS/Prisma Access Management Web Interface os command injection

Post correlati

CVE-2024-24989 | F5 NGINX Plus/NGINX Open Source QUIC Module null pointer dereference (K000138444)

CVE-2021-1440 | Cisco IOS XR up to 7.2.12 Resource Public Key Infrastructure assertion (cisco-sa-xrbgp-rpki-dos-gvmjqxbk)

CVE-2023-51101 | Tenda W9 1.0.0.7(4456)_CN formSetUplinkInfo stack-based overflow

CVE-2024-46858 | Linux Kernel up to 6.1.110/6.6.51/6.10.10 mptcp sk_stop_timer_sync use after free